Transparent Tribe Targets Indian Government, Defense, and Aerospace Sectors Leveraging Cross-Platform Programming Languages
Essential information
- Published
- 24/05/2024 07:49
- Modified
- 24/05/2024 08:27
- Tags
- 2024-05-24 apt espionage transparent tribe
- Related entities
- 97 observables, 1 intrusion sets (apt), 13 techniques (mitre), 3 malware, 1 others
Description
BlackBerry discovered the Pakistani-based advanced persistent threat group Transparent Tribe (APT36) targeting the Indian government, defense, and aerospace sectors. The group employed cross-platform programming languages, open-source tools, and abused web services for command-and-control and exfiltration. Techniques included spear-phishing, malicious documents, ISO images, and Telegram RATs. Transparent Tribe gathered intelligence by exfiltrating data and stealing browser information. The persistent targeting of critical Indian sectors suggests potential alignment with Pakistan's interests amid heightened geopolitical tensions.